JP7654404B2 - 完全性監視及びネットワーク侵入検出のための属性ベースのポリシー - Google Patents
完全性監視及びネットワーク侵入検出のための属性ベースのポリシー Download PDFInfo
- Publication number
- JP7654404B2 JP7654404B2 JP2020546891A JP2020546891A JP7654404B2 JP 7654404 B2 JP7654404 B2 JP 7654404B2 JP 2020546891 A JP2020546891 A JP 2020546891A JP 2020546891 A JP2020546891 A JP 2020546891A JP 7654404 B2 JP7654404 B2 JP 7654404B2
- Authority
- JP
- Japan
- Prior art keywords
- host
- link
- attribute
- quarantine
- policy
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
- H04L63/0236—Filtering by address, protocol, port number or service, e.g. IP-address or URL
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1416—Event detection, e.g. attack signature detection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1425—Traffic logging, e.g. anomaly detection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/145—Countermeasures against malicious traffic the attack involving the propagation of malware through the network, e.g. viruses, trojans or worms
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/20—Network architectures or network communication protocols for network security for managing network security; network security policies in general
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Health & Medical Sciences (AREA)
- General Health & Medical Sciences (AREA)
- Virology (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Applications Claiming Priority (11)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| NL2020552 | 2018-03-08 | ||
| NL2020552A NL2020552B1 (en) | 2018-03-08 | 2018-03-08 | Attribute-based policies for integrity monitoring and network intrusion detection |
| NL2020633 | 2018-03-20 | ||
| NL2020632A NL2020632B1 (en) | 2018-03-20 | 2018-03-20 | Attribute-based policies for integrity monitoring and network intrusion detection |
| NL2020632 | 2018-03-20 | ||
| NL2020635 | 2018-03-20 | ||
| NL2020635A NL2020635B1 (en) | 2018-03-20 | 2018-03-20 | Attribute-based policies for integrity monitoring and network intrusion detection |
| NL2020634 | 2018-03-20 | ||
| NL2020633A NL2020633B1 (en) | 2018-03-20 | 2018-03-20 | Attribute-based policies for integrity monitoring and network intrusion detection |
| NL2020634A NL2020634B1 (en) | 2018-03-20 | 2018-03-20 | Attribute-based policies for integrity monitoring and network intrusion detection |
| PCT/NL2019/050147 WO2019172762A1 (en) | 2018-03-08 | 2019-03-07 | Attribute-based policies for integrity monitoring and network intrusion detection |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| JP2021515498A JP2021515498A (ja) | 2021-06-17 |
| JP7654404B2 true JP7654404B2 (ja) | 2025-04-01 |
Family
ID=66641441
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| JP2020546891A Active JP7654404B2 (ja) | 2018-03-08 | 2019-03-07 | 完全性監視及びネットワーク侵入検出のための属性ベースのポリシー |
Country Status (6)
| Country | Link |
|---|---|
| US (3) | US11641370B2 (he) |
| EP (1) | EP3763099B1 (he) |
| JP (1) | JP7654404B2 (he) |
| AU (1) | AU2019232391B2 (he) |
| IL (1) | IL276895B2 (he) |
| WO (1) | WO2019172762A1 (he) |
Families Citing this family (22)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP4000232A4 (en) * | 2019-07-15 | 2023-04-12 | ICS Security (2014) Ltd. | System and method for protection of an ics network by an hmi server therein |
| US11956265B2 (en) * | 2019-08-23 | 2024-04-09 | BitSight Technologies, Inc. | Systems and methods for inferring entity relationships via network communications of users or user devices |
| US12192175B2 (en) * | 2019-12-20 | 2025-01-07 | Cisco Technology, Inc. | Intent-based security for industrial IoT devices |
| US11729210B2 (en) * | 2020-04-17 | 2023-08-15 | Cisco Technology, Inc. | Detecting spoofing in device classification systems |
| EP4184875A4 (en) * | 2020-07-15 | 2023-12-27 | Panasonic Intellectual Property Corporation of America | COMMUNICATIONS MONITORING METHOD AND COMMUNICATIONS MONITORING SYSTEM |
| US12309206B2 (en) * | 2020-08-09 | 2025-05-20 | Ericom Software Ltd. | System and method for creating access control policies for individual users, user groups, network host or network host groups through network traffic analysis |
| JP7577492B2 (ja) * | 2020-09-23 | 2024-11-05 | キヤノン株式会社 | 情報処理装置、情報処理方法、及びプログラム |
| US11895128B2 (en) | 2021-01-15 | 2024-02-06 | Bank Of America Corporation | Artificial intelligence vulnerability collation |
| US11683335B2 (en) | 2021-01-15 | 2023-06-20 | Bank Of America Corporation | Artificial intelligence vendor similarity collation |
| US11757904B2 (en) * | 2021-01-15 | 2023-09-12 | Bank Of America Corporation | Artificial intelligence reverse vendor collation |
| US12113809B2 (en) | 2021-01-15 | 2024-10-08 | Bank Of America Corporation | Artificial intelligence corroboration of vendor outputs |
| US12047355B2 (en) * | 2021-03-08 | 2024-07-23 | Adobe Inc. | Machine learning techniques for mitigating aggregate exposure of identifying information |
| US12519792B2 (en) * | 2021-03-15 | 2026-01-06 | Circle Media Labs Inc. | Internet access filtering systems and methods |
| US12242600B2 (en) * | 2021-05-13 | 2025-03-04 | Microsoft Technology Licensing, Llc | Abnormally permissive role definition detection systems |
| US11544123B1 (en) * | 2021-06-28 | 2023-01-03 | Anurag Singla | Systems and methods for detecting partitioned and aggregated novel network, user, device and application behaviors |
| US12034758B2 (en) * | 2021-09-14 | 2024-07-09 | The Mitre Corporation | Optimizing network microsegmentation policy for cyber resilience |
| CN116074190B (zh) * | 2021-10-29 | 2026-03-03 | 华为技术有限公司 | 网络配置特征提取方法及相关装置 |
| CN118214578A (zh) * | 2022-12-15 | 2024-06-18 | 特灵国际有限公司 | 建筑物自动化系统的反应式网络安全 |
| US20240236098A1 (en) * | 2022-12-23 | 2024-07-11 | KnowBe4, Inc. | Blocklist generation system based on reported threats |
| US12335279B2 (en) * | 2023-01-10 | 2025-06-17 | Cisco Technology, Inc. | Blocking and alerting with domain fronting intelligence |
| US20250272422A1 (en) * | 2024-02-26 | 2025-08-28 | Microsoft Technology Licensing, Llc | Deduplicating role-based access control policies using symbolic abstraction models and satisfiability solver models |
| US20260006050A1 (en) * | 2024-06-28 | 2026-01-01 | F5, Inc. | Methods and devices for enhancing security protection for a network service device |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2014522167A (ja) | 2011-07-26 | 2014-08-28 | セキュリティー マターズ ベスローテン フェンノートシャップ | データ通信ネットワークにおいてプロトコルメッセージを分類するための方法およびシステム |
| US20160006753A1 (en) | 2013-02-22 | 2016-01-07 | Adaptive Mobile Security Limited | System and Method for Embedded Mobile (EM)/Machine to Machine (M2M) Security, Pattern Detection, Mitigation |
Family Cites Families (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1986391A1 (en) * | 2007-04-23 | 2008-10-29 | Mitsubishi Electric Corporation | Detecting anomalies in signalling flows |
| US8844033B2 (en) * | 2008-05-27 | 2014-09-23 | The Trustees Of Columbia University In The City Of New York | Systems, methods, and media for detecting network anomalies using a trained probabilistic model |
| US9886581B2 (en) * | 2014-02-25 | 2018-02-06 | Accenture Global Solutions Limited | Automated intelligence graph construction and countermeasure deployment |
| US10122740B1 (en) * | 2015-05-05 | 2018-11-06 | F5 Networks, Inc. | Methods for establishing anomaly detection configurations and identifying anomalous network traffic and devices thereof |
| US9923911B2 (en) * | 2015-10-08 | 2018-03-20 | Cisco Technology, Inc. | Anomaly detection supporting new application deployments |
| US10812497B2 (en) * | 2015-12-07 | 2020-10-20 | Prismo Systems Inc. | Systems and methods for detecting and responding to security threats using application execution and connection lineage tracing |
| US10375143B2 (en) * | 2016-08-26 | 2019-08-06 | Cisco Technology, Inc. | Learning indicators of compromise with hierarchical models |
| WO2018133992A1 (en) * | 2017-01-18 | 2018-07-26 | British Telecommunications Public Limited Company | Management of federated systems |
| US10439985B2 (en) * | 2017-02-15 | 2019-10-08 | Edgewise Networks, Inc. | Network application security policy generation |
-
2019
- 2019-03-07 EP EP19726180.3A patent/EP3763099B1/en active Active
- 2019-03-07 WO PCT/NL2019/050147 patent/WO2019172762A1/en not_active Ceased
- 2019-03-07 US US16/975,561 patent/US11641370B2/en active Active
- 2019-03-07 IL IL276895A patent/IL276895B2/he unknown
- 2019-03-07 AU AU2019232391A patent/AU2019232391B2/en active Active
- 2019-03-07 JP JP2020546891A patent/JP7654404B2/ja active Active
-
2023
- 2023-03-17 US US18/122,919 patent/US11949704B2/en active Active
-
2024
- 2024-04-01 US US18/623,265 patent/US20240340299A1/en active Pending
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2014522167A (ja) | 2011-07-26 | 2014-08-28 | セキュリティー マターズ ベスローテン フェンノートシャップ | データ通信ネットワークにおいてプロトコルメッセージを分類するための方法およびシステム |
| US20160006753A1 (en) | 2013-02-22 | 2016-01-07 | Adaptive Mobile Security Limited | System and Method for Embedded Mobile (EM)/Machine to Machine (M2M) Security, Pattern Detection, Mitigation |
Also Published As
| Publication number | Publication date |
|---|---|
| US11641370B2 (en) | 2023-05-02 |
| WO2019172762A9 (en) | 2020-04-09 |
| IL276895B2 (he) | 2024-10-01 |
| WO2019172762A1 (en) | 2019-09-12 |
| US11949704B2 (en) | 2024-04-02 |
| IL276895B1 (he) | 2024-06-01 |
| US20240340299A1 (en) | 2024-10-10 |
| CA3092260A1 (en) | 2019-09-12 |
| AU2019232391A8 (en) | 2020-10-01 |
| IL276895A (he) | 2020-10-29 |
| JP2021515498A (ja) | 2021-06-17 |
| EP3763099C0 (en) | 2024-05-01 |
| AU2019232391A1 (en) | 2020-09-17 |
| EP3763099A1 (en) | 2021-01-13 |
| EP3763099B1 (en) | 2024-05-01 |
| US20200404010A1 (en) | 2020-12-24 |
| US20230254328A1 (en) | 2023-08-10 |
| AU2019232391B2 (en) | 2024-06-20 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| JP7654404B2 (ja) | 完全性監視及びネットワーク侵入検出のための属性ベースのポリシー | |
| US20240414190A1 (en) | System and method for utilizing large language models for mitigation of cyber threats and remediation or restoration of functionality of a cybersecurity system | |
| US12519831B2 (en) | Artificial intelligence adversary red team | |
| US12463985B2 (en) | Endpoint agent client sensors (cSENSORS) and associated infrastructures for extending network visibility in an artificial intelligence (AI) threat defense environment | |
| US20240403420A1 (en) | System and method for adjusting or creating ai models based on model breach alerts | |
| US20220201042A1 (en) | Ai-driven defensive penetration test analysis and recommendation system | |
| CN110602041A (zh) | 基于白名单的物联网设备识别方法、装置及网络架构 | |
| US11683336B2 (en) | System and method for using weighting factor values of inventory rules to efficiently identify devices of a computer network | |
| US12401581B2 (en) | Entity attribute designation based on logic programming | |
| EP4154136A1 (en) | Endpoint client sensors for extending network visibility | |
| US20250323930A1 (en) | System and method for modeling and prioritization of attack paths in network environments | |
| US20210099479A1 (en) | System and method for using inventory rules to identify devices of a computer network | |
| WO2024115310A1 (en) | Monitoring system | |
| CA3092260C (en) | Attribute-based policies for integrity monitoring and network intrusion detection | |
| NL2020635B1 (en) | Attribute-based policies for integrity monitoring and network intrusion detection | |
| NL2020552B1 (en) | Attribute-based policies for integrity monitoring and network intrusion detection | |
| NL2020633B1 (en) | Attribute-based policies for integrity monitoring and network intrusion detection | |
| NL2020634B1 (en) | Attribute-based policies for integrity monitoring and network intrusion detection | |
| NL2020632B1 (en) | Attribute-based policies for integrity monitoring and network intrusion detection | |
| Mahmood et al. | Enhancing Network Security: A Study on Classification Models for Intrusion Detection Systems | |
| Meckl | Cybersecurity Incident Response Orchestration Using Agile Cognitive Assistants |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| A521 | Request for written amendment filed |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20201112 |
|
| A621 | Written request for application examination |
Free format text: JAPANESE INTERMEDIATE CODE: A621 Effective date: 20220303 |
|
| A977 | Report on retrieval |
Free format text: JAPANESE INTERMEDIATE CODE: A971007 Effective date: 20230327 |
|
| A131 | Notification of reasons for refusal |
Free format text: JAPANESE INTERMEDIATE CODE: A131 Effective date: 20230424 |
|
| A601 | Written request for extension of time |
Free format text: JAPANESE INTERMEDIATE CODE: A601 Effective date: 20230724 |
|
| A601 | Written request for extension of time |
Free format text: JAPANESE INTERMEDIATE CODE: A601 Effective date: 20230925 |
|
| A521 | Request for written amendment filed |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20231024 |
|
| A131 | Notification of reasons for refusal |
Free format text: JAPANESE INTERMEDIATE CODE: A131 Effective date: 20240115 |
|
| A601 | Written request for extension of time |
Free format text: JAPANESE INTERMEDIATE CODE: A601 Effective date: 20240415 |
|
| A601 | Written request for extension of time |
Free format text: JAPANESE INTERMEDIATE CODE: A601 Effective date: 20240617 |
|
| A521 | Request for written amendment filed |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20240716 |
|
| A131 | Notification of reasons for refusal |
Free format text: JAPANESE INTERMEDIATE CODE: A131 Effective date: 20241017 |
|
| A521 | Request for written amendment filed |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20250117 |
|
| TRDD | Decision of grant or rejection written | ||
| A01 | Written decision to grant a patent or to grant a registration (utility model) |
Free format text: JAPANESE INTERMEDIATE CODE: A01 Effective date: 20250217 |
|
| A61 | First payment of annual fees (during grant procedure) |
Free format text: JAPANESE INTERMEDIATE CODE: A61 Effective date: 20250319 |
|
| R150 | Certificate of patent or registration of utility model |
Ref document number: 7654404 Country of ref document: JP Free format text: JAPANESE INTERMEDIATE CODE: R150 |